Is the file INVIS.VBS located on your computer? Then your computer is infected.
We do suggest you should remove INVIS.VBS from your computer as soon as possible.
INVIS.VBS is Trojan/Backdoor.
Kill the process INVIS.VBS and remove INVIS.VBS from the Windows startup.
Malware Analysis of INVIS.VBS
Full path on a computer: %Appdata%\PTSx32\invis.vbs
Detected by UnHackMe:
INVIS.VBS
Default location: %Appdata%\PTSx32\invis.vbs
Removal Results: Success
Number of reboot: 1
INVIS.VBS is known as:
Trojan.BtcMine.224
INVIS.VBS hash:
- MD5: c578d9653b22800c3eb6b6a51219bbb8
How to quickly detect INVIS.VBS presence?
Image may be NSFW.
Clik here to view.
Registry:
Clik here to view.
Registry:- HKCU\Software\Microsoft\Windows\CurrentVersion\Run\AdobeUpdate: “wscript “%Appdata%\PTSx32\invis.vbs” “%Appdata%\PTSx32\bat.bat”"
Image may be NSFW.
Clik here to view.Folders:
Clik here to view.
Folders:- %Appdata%\PTSx32
Image may be NSFW.
Clik here to view.Files:
Clik here to view.
Files:- %Appdata%\PTSx32\bat.bat
- %Appdata%\PTSx32\invis.vbs
- %Appdata%\PTSx32\winsvchost.exe
